pulumi-gcp 7.20.0a1713984378__py3-none-any.whl → 7.21.0__py3-none-any.whl

pulumi_gcp/compute/region_url_map.py

@@ -1072,241 +1072,6 @@ class RegionUrlMap(pulumi.CustomResource):
                 path="/home",
             )])
         ```
-        ### Int Https Lb Https Redirect
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-        import pulumi_tls as tls
-
-        # Internal HTTPS load balancer with HTTP-to-HTTPS redirect
-        # VPC network
-        default = gcp.compute.Network("default",
-            name="l7-ilb-network",
-            auto_create_subnetworks=False)
-        # Proxy-only subnet
-        proxy_subnet = gcp.compute.Subnetwork("proxy_subnet",
-            name="l7-ilb-proxy-subnet",
-            ip_cidr_range="10.0.0.0/24",
-            region="europe-west1",
-            purpose="REGIONAL_MANAGED_PROXY",
-            role="ACTIVE",
-            network=default.id)
-        # Backend subnet
-        default_subnetwork = gcp.compute.Subnetwork("default",
-            name="l7-ilb-subnet",
-            ip_cidr_range="10.0.1.0/24",
-            region="europe-west1",
-            network=default.id)
-        # Reserved internal address
-        default_address = gcp.compute.Address("default",
-            name="l7-ilb-ip",
-            subnetwork=default_subnetwork.id,
-            address_type="INTERNAL",
-            address="10.0.1.5",
-            region="europe-west1",
-            purpose="SHARED_LOADBALANCER_VIP")
-        # Self-signed regional SSL certificate for testing
-        default_private_key = tls.PrivateKey("default",
-            algorithm="RSA",
-            rsa_bits=2048)
-        default_self_signed_cert = tls.SelfSignedCert("default",
-            key_algorithm=default_private_key.algorithm,
-            private_key_pem=default_private_key.private_key_pem,
-            validity_period_hours=12,
-            early_renewal_hours=3,
-            allowed_uses=[
-                "key_encipherment",
-                "digital_signature",
-                "server_auth",
-            ],
-            dns_names=["example.com"],
-            subject=tls.SelfSignedCertSubjectArgs(
-                common_name="example.com",
-                organization="ACME Examples, Inc",
-            ))
-        default_region_ssl_certificate = gcp.compute.RegionSslCertificate("default",
-            name_prefix="my-certificate-",
-            private_key=default_private_key.private_key_pem,
-            certificate=default_self_signed_cert.cert_pem,
-            region="europe-west1")
-        # Regional health check
-        default_region_health_check = gcp.compute.RegionHealthCheck("default",
-            name="l7-ilb-hc",
-            region="europe-west1",
-            http_health_check=gcp.compute.RegionHealthCheckHttpHealthCheckArgs(
-                port_specification="USE_SERVING_PORT",
-            ))
-        # Instance template
-        default_instance_template = gcp.compute.InstanceTemplate("default",
-            network_interfaces=[gcp.compute.InstanceTemplateNetworkInterfaceArgs(
-                access_configs=[gcp.compute.InstanceTemplateNetworkInterfaceAccessConfigArgs()],
-                network=default.id,
-                subnetwork=default_subnetwork.id,
-            )],
-            name="l7-ilb-mig-template",
-            machine_type="e2-small",
-            tags=["http-server"],
-            disks=[gcp.compute.InstanceTemplateDiskArgs(
-                source_image="debian-cloud/debian-10",
-                auto_delete=True,
-                boot=True,
-            )],
-            metadata={
-                "startup-script": \"\"\"#! /bin/bash
-        set -euo pipefail
-
-        export DEBIAN_FRONTEND=noninteractive
-        apt-get update
-        apt-get install -y nginx-light jq
-
-        NAME=$(curl -H "Metadata-Flavor: Google" "http://metadata.google.internal/computeMetadata/v1/instance/hostname")
-        IP=$(curl -H "Metadata-Flavor: Google" "http://metadata.google.internal/computeMetadata/v1/instance/network-interfaces/0/ip")
-        METADATA=$(curl -f -H "Metadata-Flavor: Google" "http://metadata.google.internal/computeMetadata/v1/instance/attributes/?recursive=True" | jq 'del(.["startup-script"])')
-
-        cat <<EOF > /var/www/html/index.html
-        <pre>
-        Name: $NAME
-        IP: $IP
-        Metadata: $METADATA
-        </pre>
-        EOF
-        \"\"\",
-            })
-        # Regional MIG
-        default_region_instance_group_manager = gcp.compute.RegionInstanceGroupManager("default",
-            name="l7-ilb-mig1",
-            region="europe-west1",
-            versions=[gcp.compute.RegionInstanceGroupManagerVersionArgs(
-                instance_template=default_instance_template.id,
-                name="primary",
-            )],
-            named_ports=[gcp.compute.RegionInstanceGroupManagerNamedPortArgs(
-                name="http-server",
-                port=80,
-            )],
-            base_instance_name="vm",
-            target_size=2)
-        # Regional backend service
-        default_region_backend_service = gcp.compute.RegionBackendService("default",
-            name="l7-ilb-backend-service",
-            region="europe-west1",
-            protocol="HTTP",
-            port_name="http-server",
-            load_balancing_scheme="INTERNAL_MANAGED",
-            timeout_sec=10,
-            health_checks=default_region_health_check.id,
-            backends=[gcp.compute.RegionBackendServiceBackendArgs(
-                group=default_region_instance_group_manager.instance_group,
-                balancing_mode="UTILIZATION",
-                capacity_scaler=1,
-            )])
-        # Regional URL map
-        https_lb = gcp.compute.RegionUrlMap("https_lb",
-            name="l7-ilb-regional-url-map",
-            region="europe-west1",
-            default_service=default_region_backend_service.id)
-        # Regional target HTTPS proxy
-        default_region_target_https_proxy = gcp.compute.RegionTargetHttpsProxy("default",
-            name="l7-ilb-target-https-proxy",
-            region="europe-west1",
-            url_map=https_lb.id,
-            ssl_certificates=[default_region_ssl_certificate.self_link])
-        # Regional forwarding rule
-        default_forwarding_rule = gcp.compute.ForwardingRule("default",
-            name="l7-ilb-forwarding-rule",
-            region="europe-west1",
-            ip_protocol="TCP",
-            ip_address=default_address.id,
-            load_balancing_scheme="INTERNAL_MANAGED",
-            port_range="443",
-            target=default_region_target_https_proxy.id,
-            network=default.id,
-            subnetwork=default_subnetwork.id,
-            network_tier="PREMIUM")
-        # Allow all access to health check ranges
-        default_firewall = gcp.compute.Firewall("default",
-            name="l7-ilb-fw-allow-hc",
-            direction="INGRESS",
-            network=default.id,
-            source_ranges=[
-                "130.211.0.0/22",
-                "35.191.0.0/16",
-                "35.235.240.0/20",
-            ],
-            allows=[gcp.compute.FirewallAllowArgs(
-                protocol="tcp",
-            )])
-        # Allow http from proxy subnet to backends
-        backends = gcp.compute.Firewall("backends",
-            name="l7-ilb-fw-allow-ilb-to-backends",
-            direction="INGRESS",
-            network=default.id,
-            source_ranges=["10.0.0.0/24"],
-            target_tags=["http-server"],
-            allows=[gcp.compute.FirewallAllowArgs(
-                protocol="tcp",
-                ports=[
-                    "80",
-                    "443",
-                    "8080",
-                ],
-            )])
-        # Test instance
-        default_instance = gcp.compute.Instance("default",
-            name="l7-ilb-test-vm",
-            zone="europe-west1-b",
-            machine_type="e2-small",
-            network_interfaces=[gcp.compute.InstanceNetworkInterfaceArgs(
-                network=default.id,
-                subnetwork=default_subnetwork.id,
-            )],
-            boot_disk=gcp.compute.InstanceBootDiskArgs(
-                initialize_params=gcp.compute.InstanceBootDiskInitializeParamsArgs(
-                    image="debian-cloud/debian-10",
-                ),
-            ))
-        ### HTTP-to-HTTPS redirect ###
-        # Regional URL map
-        redirect_region_url_map = gcp.compute.RegionUrlMap("redirect",
-            name="l7-ilb-redirect-url-map",
-            region="europe-west1",
-            default_service=default_region_backend_service.id,
-            host_rules=[gcp.compute.RegionUrlMapHostRuleArgs(
-                hosts=["*"],
-                path_matcher="allpaths",
-            )],
-            path_matchers=[gcp.compute.RegionUrlMapPathMatcherArgs(
-                name="allpaths",
-                default_service=default_region_backend_service.id,
-                path_rules=[gcp.compute.RegionUrlMapPathMatcherPathRuleArgs(
-                    paths=["/"],
-                    url_redirect=gcp.compute.RegionUrlMapPathMatcherPathRuleUrlRedirectArgs(
-                        https_redirect=True,
-                        host_redirect="10.0.1.5:443",
-                        redirect_response_code="PERMANENT_REDIRECT",
-                        strip_query=True,
-                    ),
-                )],
-            )])
-        # Regional HTTP proxy
-        default_region_target_http_proxy = gcp.compute.RegionTargetHttpProxy("default",
-            name="l7-ilb-target-http-proxy",
-            region="europe-west1",
-            url_map=redirect_region_url_map.id)
-        # Regional forwarding rule
-        redirect = gcp.compute.ForwardingRule("redirect",
-            name="l7-ilb-redirect",
-            region="europe-west1",
-            ip_protocol="TCP",
-            ip_address=default_address.id,
-            load_balancing_scheme="INTERNAL_MANAGED",
-            port_range="80",
-            target=default_region_target_http_proxy.id,
-            network=default.id,
-            subnetwork=default_subnetwork.id,
-            network_tier="PREMIUM")
-        ```
         ### Region Url Map Path Template Match
 
         ```python
@@ -1985,241 +1750,6 @@ class RegionUrlMap(pulumi.CustomResource):
                 path="/home",
             )])
         ```
-        ### Int Https Lb Https Redirect
-
-        ```python
-        import pulumi
-        import pulumi_gcp as gcp
-        import pulumi_tls as tls
-
-        # Internal HTTPS load balancer with HTTP-to-HTTPS redirect
-        # VPC network
-        default = gcp.compute.Network("default",
-            name="l7-ilb-network",
-            auto_create_subnetworks=False)
-        # Proxy-only subnet
-        proxy_subnet = gcp.compute.Subnetwork("proxy_subnet",
-            name="l7-ilb-proxy-subnet",
-            ip_cidr_range="10.0.0.0/24",
-            region="europe-west1",
-            purpose="REGIONAL_MANAGED_PROXY",
-            role="ACTIVE",
-            network=default.id)
-        # Backend subnet
-        default_subnetwork = gcp.compute.Subnetwork("default",
-            name="l7-ilb-subnet",
-            ip_cidr_range="10.0.1.0/24",
-            region="europe-west1",
-            network=default.id)
-        # Reserved internal address
-        default_address = gcp.compute.Address("default",
-            name="l7-ilb-ip",
-            subnetwork=default_subnetwork.id,
-            address_type="INTERNAL",
-            address="10.0.1.5",
-            region="europe-west1",
-            purpose="SHARED_LOADBALANCER_VIP")
-        # Self-signed regional SSL certificate for testing
-        default_private_key = tls.PrivateKey("default",
-            algorithm="RSA",
-            rsa_bits=2048)
-        default_self_signed_cert = tls.SelfSignedCert("default",
-            key_algorithm=default_private_key.algorithm,
-            private_key_pem=default_private_key.private_key_pem,
-            validity_period_hours=12,
-            early_renewal_hours=3,
-            allowed_uses=[
-                "key_encipherment",
-                "digital_signature",
-                "server_auth",
-            ],
-            dns_names=["example.com"],
-            subject=tls.SelfSignedCertSubjectArgs(
-                common_name="example.com",
-                organization="ACME Examples, Inc",
-            ))
-        default_region_ssl_certificate = gcp.compute.RegionSslCertificate("default",
-            name_prefix="my-certificate-",
-            private_key=default_private_key.private_key_pem,
-            certificate=default_self_signed_cert.cert_pem,
-            region="europe-west1")
-        # Regional health check
-        default_region_health_check = gcp.compute.RegionHealthCheck("default",
-            name="l7-ilb-hc",
-            region="europe-west1",
-            http_health_check=gcp.compute.RegionHealthCheckHttpHealthCheckArgs(
-                port_specification="USE_SERVING_PORT",
-            ))
-        # Instance template
-        default_instance_template = gcp.compute.InstanceTemplate("default",
-            network_interfaces=[gcp.compute.InstanceTemplateNetworkInterfaceArgs(
-                access_configs=[gcp.compute.InstanceTemplateNetworkInterfaceAccessConfigArgs()],
-                network=default.id,
-                subnetwork=default_subnetwork.id,
-            )],
-            name="l7-ilb-mig-template",
-            machine_type="e2-small",
-            tags=["http-server"],
-            disks=[gcp.compute.InstanceTemplateDiskArgs(
-                source_image="debian-cloud/debian-10",
-                auto_delete=True,
-                boot=True,
-            )],
-            metadata={
-                "startup-script": \"\"\"#! /bin/bash
-        set -euo pipefail
-
-        export DEBIAN_FRONTEND=noninteractive
-        apt-get update
-        apt-get install -y nginx-light jq
-
-        NAME=$(curl -H "Metadata-Flavor: Google" "http://metadata.google.internal/computeMetadata/v1/instance/hostname")
-        IP=$(curl -H "Metadata-Flavor: Google" "http://metadata.google.internal/computeMetadata/v1/instance/network-interfaces/0/ip")
-        METADATA=$(curl -f -H "Metadata-Flavor: Google" "http://metadata.google.internal/computeMetadata/v1/instance/attributes/?recursive=True" | jq 'del(.["startup-script"])')
-
-        cat <<EOF > /var/www/html/index.html
-        <pre>
-        Name: $NAME
-        IP: $IP
-        Metadata: $METADATA
-        </pre>
-        EOF
-        \"\"\",
-            })
-        # Regional MIG
-        default_region_instance_group_manager = gcp.compute.RegionInstanceGroupManager("default",
-            name="l7-ilb-mig1",
-            region="europe-west1",
-            versions=[gcp.compute.RegionInstanceGroupManagerVersionArgs(
-                instance_template=default_instance_template.id,
-                name="primary",
-            )],
-            named_ports=[gcp.compute.RegionInstanceGroupManagerNamedPortArgs(
-                name="http-server",
-                port=80,
-            )],
-            base_instance_name="vm",
-            target_size=2)
-        # Regional backend service
-        default_region_backend_service = gcp.compute.RegionBackendService("default",
-            name="l7-ilb-backend-service",
-            region="europe-west1",
-            protocol="HTTP",
-            port_name="http-server",
-            load_balancing_scheme="INTERNAL_MANAGED",
-            timeout_sec=10,
-            health_checks=default_region_health_check.id,
-            backends=[gcp.compute.RegionBackendServiceBackendArgs(
-                group=default_region_instance_group_manager.instance_group,
-                balancing_mode="UTILIZATION",
-                capacity_scaler=1,
-            )])
-        # Regional URL map
-        https_lb = gcp.compute.RegionUrlMap("https_lb",
-            name="l7-ilb-regional-url-map",
-            region="europe-west1",
-            default_service=default_region_backend_service.id)
-        # Regional target HTTPS proxy
-        default_region_target_https_proxy = gcp.compute.RegionTargetHttpsProxy("default",
-            name="l7-ilb-target-https-proxy",
-            region="europe-west1",
-            url_map=https_lb.id,
-            ssl_certificates=[default_region_ssl_certificate.self_link])
-        # Regional forwarding rule
-        default_forwarding_rule = gcp.compute.ForwardingRule("default",
-            name="l7-ilb-forwarding-rule",
-            region="europe-west1",
-            ip_protocol="TCP",
-            ip_address=default_address.id,
-            load_balancing_scheme="INTERNAL_MANAGED",
-            port_range="443",
-            target=default_region_target_https_proxy.id,
-            network=default.id,
-            subnetwork=default_subnetwork.id,
-            network_tier="PREMIUM")
-        # Allow all access to health check ranges
-        default_firewall = gcp.compute.Firewall("default",
-            name="l7-ilb-fw-allow-hc",
-            direction="INGRESS",
-            network=default.id,
-            source_ranges=[
-                "130.211.0.0/22",
-                "35.191.0.0/16",
-                "35.235.240.0/20",
-            ],
-            allows=[gcp.compute.FirewallAllowArgs(
-                protocol="tcp",
-            )])
-        # Allow http from proxy subnet to backends
-        backends = gcp.compute.Firewall("backends",
-            name="l7-ilb-fw-allow-ilb-to-backends",
-            direction="INGRESS",
-            network=default.id,
-            source_ranges=["10.0.0.0/24"],
-            target_tags=["http-server"],
-            allows=[gcp.compute.FirewallAllowArgs(
-                protocol="tcp",
-                ports=[
-                    "80",
-                    "443",
-                    "8080",
-                ],
-            )])
-        # Test instance
-        default_instance = gcp.compute.Instance("default",
-            name="l7-ilb-test-vm",
-            zone="europe-west1-b",
-            machine_type="e2-small",
-            network_interfaces=[gcp.compute.InstanceNetworkInterfaceArgs(
-                network=default.id,
-                subnetwork=default_subnetwork.id,
-            )],
-            boot_disk=gcp.compute.InstanceBootDiskArgs(
-                initialize_params=gcp.compute.InstanceBootDiskInitializeParamsArgs(
-                    image="debian-cloud/debian-10",
-                ),
-            ))
-        ### HTTP-to-HTTPS redirect ###
-        # Regional URL map
-        redirect_region_url_map = gcp.compute.RegionUrlMap("redirect",
-            name="l7-ilb-redirect-url-map",
-            region="europe-west1",
-            default_service=default_region_backend_service.id,
-            host_rules=[gcp.compute.RegionUrlMapHostRuleArgs(
-                hosts=["*"],
-                path_matcher="allpaths",
-            )],
-            path_matchers=[gcp.compute.RegionUrlMapPathMatcherArgs(
-                name="allpaths",
-                default_service=default_region_backend_service.id,
-                path_rules=[gcp.compute.RegionUrlMapPathMatcherPathRuleArgs(
-                    paths=["/"],
-                    url_redirect=gcp.compute.RegionUrlMapPathMatcherPathRuleUrlRedirectArgs(
-                        https_redirect=True,
-                        host_redirect="10.0.1.5:443",
-                        redirect_response_code="PERMANENT_REDIRECT",
-                        strip_query=True,
-                    ),
-                )],
-            )])
-        # Regional HTTP proxy
-        default_region_target_http_proxy = gcp.compute.RegionTargetHttpProxy("default",
-            name="l7-ilb-target-http-proxy",
-            region="europe-west1",
-            url_map=redirect_region_url_map.id)
-        # Regional forwarding rule
-        redirect = gcp.compute.ForwardingRule("redirect",
-            name="l7-ilb-redirect",
-            region="europe-west1",
-            ip_protocol="TCP",
-            ip_address=default_address.id,
-            load_balancing_scheme="INTERNAL_MANAGED",
-            port_range="80",
-            target=default_region_target_http_proxy.id,
-            network=default.id,
-            subnetwork=default_subnetwork.id,
-            network_tier="PREMIUM")
-        ```
         ### Region Url Map Path Template Match
 
         ```python